Strix
26.1K

CVE-2022-4023

MEDIUMCVSS 5.3/10EPSS 0.30%

Last modified

CVE-2022-4023 is a medium-severity vulnerability rated 5.3/10 on the CVSS scale. The 3DPrint WordPress plugin before 3.5.6.9 does not protect against CSRF attacks in the modified version of Tiny File Manager included with the plugin, allowing an attacker to craft a malicious request that will create an archive of any files or directories on the target server by tricking a logged in admin into submitting a form. Furthermore the created archive has a predictable location and name, allowing the attacker to download the file if they know the time at which the form was submitted, making it possible to leak sensitive files like the WordPress configuration containing database credentials and secrets.. EPSS estimates a 0.30% chance of exploitation in the next 30 days.

Description

The 3DPrint WordPress plugin before 3.5.6.9 does not protect against CSRF attacks in the modified version of Tiny File Manager included with the plugin, allowing an attacker to craft a malicious request that will create an archive of any files or directories on the target server by tricking a logged in admin into submitting a form. Furthermore the created archive has a predictable location and name, allowing the attacker to download the file if they know the time at which the form was submitted, making it possible to leak sensitive files like the WordPress configuration containing database credentials and secrets.

Metrics

CVSS 3.1
5.3/10

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N

EPSS Probability
0.30%

21.6th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

VendorProductVersions
3dprint Project3dprint< 3.5.6.9

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2022-4023?
The 3DPrint WordPress plugin before 3.5.6.9 does not protect against CSRF attacks in the modified version of Tiny File Manager included with the plugin, allowing an attacker to craft a malicious request that will create an archive of any files or directories on the target server by tricking a logged in admin into submitting a form. Furthermore the created archive has a predictable location and name, allowing the attacker to download the file if they know the time at which the form was submitted, making it possible to leak sensitive files like the WordPress configuration containing database credentials and secrets.
How severe is CVE-2022-4023?
CVE-2022-4023 has a CVSS score of 5.3/10 (MEDIUM severity). The EPSS model estimates a 0.30% probability of exploitation in the next 30 days.
How do I fix CVE-2022-4023?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2022-4023?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST